Team RISC nullcon 2012 Jailbreak presentation

673 views

Published on

Published in: Technology, Education
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
673
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
6
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Team RISC nullcon 2012 Jailbreak presentation

  1. 1. Team RISC
  2. 2. Our story of Jail break !
  3. 3. AimFind zero day in Joomla ( Im-possible in 36 Hrs ;) )
  4. 4. Eating only this ...
  5. 5. Why Joomla/Gymla ?● Challenge !● Learn exploitation in complex web applications● IBM X-force paper on CMS security.
  6. 6. Vulns in Drupal
  7. 7. Vulns in Wordpress
  8. 8. Vulns in Joomla
  9. 9. How its generally done ? 0 day vulnerability Source code Fuzzing Auditing
  10. 10. What we did ?
  11. 11. Methodology
  12. 12. Know your enemyIf you know your enemies and know yourself, you will not beimperiled in a hundred battles -- Sun Tzu, the art of war
  13. 13. Set up the Attacking environment
  14. 14. Study the Joomla architecture
  15. 15. Components,modules, plugins
  16. 16. Source code Auditing● Identify vulnerable Functions● Analyze the entry points● Analyze Input Validations.
  17. 17. The entry points
  18. 18. More ...
  19. 19. Few more ...
  20. 20. Exec call
  21. 21. RIPS output
  22. 22. Fuzzing● Find the entry points● SQL Injection● XSS● CSRF● Command Injection● Click Jacking with Drag and drop
  23. 23. JBroFuzz
  24. 24. Clickjacking
  25. 25. Tools used for Source code auditing● The mighty grep● RIPS● RATS
  26. 26. Tools used for FuzzingJBroFuzzBurp SuiteWebScarab
  27. 27. References● http://www.exploit-db.com/papers/15780/● Burp Suite● http://www.amazon.com/Fuzzing-Brute-Force-Vulnerability-Discovery/dp/0321
  28. 28. Thanks to ...Omair, Amol Naik, Null teamand especially our Jailer
  29. 29. Questions ?हैकर हैक्या ? हैकर

×